Appl. No. 09/853,913 

Amdt. dated September 8, 2005 

Reply to Office Action of June 10, 2005 



PATENT 



Amendments to the Claims: 

This listing of claims will replace all prior versions, and listings of claims in the application: 

Listing of Claims: 

1.-9. (canceled). . 

10. (currently amended) A method performed by a custodian computing system, 
having memory, to share a secret S among n secret owners such that any k of the n secret owners 
may reconstruct the secret, the method comprising the steps of: 

choosing two large primes P and Q, such that PQ is greater than S; 

computing, at the custodian computing system, and storing in the custodian 
computer memory a product N = PQ; 

computing and storing a product M= (P-\){Q-\)\ 

choosing n random numbers e x through e n that are relatively prime to N; 

choosing another random number e that is relatively prime to N; 

choosing n numbers dj through d n such that eadi mod M equals one for 1 < i < n ; 

choosing another number d such that ed mod M is equal to one; 



generating and storing a database of 



values, where each value is the product 



of d and a unique k of the di numbers for 1 < i < n , wherein each value is associated with a 
unique combination of k secret owners of the n secret owners ; 

deleting from the custodian computer memory P 9 Q, and M; 

computing Sf; 

distributing n secret owner pieces to each of the n secret owners, wherein each of 
the secret owner pieces includes S* and one of the numbers e x through e n \ aftd 
deleting the secret S and e x through e n , e, d x through d n , and di 
receiving k secret owner values from a unique combination of k secret owners; 
determining a value c that is associated with the unique combination; and 
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determining the secret S using the vakie c and the k secret owner values . 

1 1 . (currently amended) A method as in claim 10, wherein receiving k secret 
owner values from the unique combination of k secret owners comprises: the m e thod further 
comprising th e st e ps of: 

receiving a first of the n secret owner pieces from one of the n secret owners; and 
computing and storing S f = S^mod N, where / represents the one of the numbers 
e x through e n contained in the first of the n secret owner pieces. 

12. (currently amended) A method as in claim 11, wherein receiving k secret 
owner values from the unique combination of k secret owners comprises: th e m e thod furth e r 
comprising th e st e ps of: 

receiving a second of the n secret owner pieces from another one of the n secret 

owners; 

computing S q mod N 9 where q represents the one of the numbers e x through e n 
contained in the second of the n secret owner pieces; and replacing 5" with S** mod N. 

13. (currently amended) A method as in claim 12, wherein receiving k secret 
owner values from the unique combination of k secret owners comprises further comprising th e 
st e p of : 

each time another of the secret owner pieces is received from another one of the n 

secret owners; 

computing S* mod N 9 where q represents the one of the numbers e x through e n 
contained in the another of the n secret owner pieces; and replacing S' with mod N. 

14. (currently amended) A method as in claim 13, further comprising the steps 

of: 

after k secret owner pieces have been received, 
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retrieving from the database fr -the value c from among the 



values, wherein the 



value c corresponds to the k secret owner pieces of the unique combination of k secret owners 
that were received by the custodian; 

computing S* mod N\ and 

replacing S f with S* mod N. 

15. (currently amended) A method performed by a custodian computing system, 
having memory, to share a secret S among n secret owners such that any k of the n secret owners 
may reconstruct the secret, the method comprising the steps of: 

choosing two large primes P and Q, such that PQ is greater than 5; 

computing, at the custodian computing system, and storing in the custodian 
computer memory a product N = PQ; 

computing and storing a product M = (P-1)(£M); 

choosing n random numbers e x through e n that are relatively prime to N\ 

choosing random numbers e and e' that are relatively prime to N\ 

choosing n numbers d x through d„ such that e t di mod M equals one for 1 < i < n ; 

choosing numbers d and d' such that ed mod M is equal to one and such that e'd' 
mod Mis equal to one; 



generating and storing a database of 



values, where each value is the product 



K kj 

of d and a unique k of the di numbers for 1 < i < n , wherein each value is associated with a 
unique combination of k secret owners of the n secret owners ; 

deleting from the custodian computer memory P, Q 9 and M\ 

computing Sf e ; 

distributing n secret owner pieces to each of the n secret owners, wherein each of 
the secret owner pieces includes f? e ' and one of the numbers e x through e n \ and 
deleting the secret S and e x through e n , e, d x through d m and d 
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receiving k secret owner values from a unique combination of k secret owners; 
determining a value c that is associated with the unique combination; and 
determining the secret S using the value c and the k secret owner value . 

16. (currently amended) A method as in claim 15, wherein receiving k secret 
owner values from the unique combination of k secret owners comprises the m e thod furth e r 
comprising th e steps of : 

receiving a first of the n secret owner pieces from one of the n secret owners; and 
computing and storing 5" = S^mod N 9 where / represents the one of the numbers 
e x through e n contained in the first of the n secret owner pieces. 

17. (currently amended) A method as in claim 16, wherein receiving k secret 
owner values from the unique combination of k secret owners comprises the m e thod furth e r 
comprising the steps of : 

receiving a second of the n secret owner pieces from another one of the n secret 

owners; 

computing S" 9 mod N 9 where q represents the one of the numbers e x through e n 
contained in the second of the n secret owner pieces; and replacing S' with mod N. 

18. (currently amended) A method as in claim 17, wherein receiving k secret 
owner values from the unique combination of k secret owners comprises furth e r compri sing the 
s t e p of : 

each time another of the secret owner pieces is received from another one of the n 

secret owners; 

computing S q mod N 9 where q represents the one of the numbers e x through e n 
contained in the another of the n secret owner pieces; and replacing S f with mod N. 

19. (currently amended) A method as in claim 18, further comprising the steps 

of: 

after k secret owner pieces have been received, 
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retrieving from the database a -the value c from among the 



values, wherein the 



value c corresponds to the k secret owner pieces from the unique combination of k secret owners 
that were received by the custodian; 
computing S* mod N; 

replacing S' with S* mod N; 

computing S**' mod N\ and 

replacing S' with S**' mod N. 

20. (currently amended) A method performed by a custodian computing system, 
having memory, to share a secret among n secret owners such that any k of the n secret owners 
may reconstruct the secret, the method comprising the steps of: 

encrypting the secret so as to generate an encrypted secret; 

deleting from the custodian computer memory the secret; and 

performing a forward k out of n secret sharing algorithm on the encrypted secret 
so as to generate n secret owner pieces; 

storing a plurality of values associated with a plurality of unique combinations of 
k secret owners of the n secret owners; 

distributing the n secret owner pieces to the n secret owners; 

receiving k secret owner values from a unique combination of k secret owners;; 

determining a value c that is associated with the unique combination; 

performing a reverse k out of n secret sharing algorithm on the k secret owner 
pieces so as to recreate the encrypted secret using the value c; and 

decrypting the encrypted secret so as to recreate the secret . 

21. -24. (canceled). 

25. (original) A method as in claim 20, wherein the step of performing a forward 
k out of n secret sharing algorithm includes the steps of: 

dividing the encrypted secret into A; pieces; and 
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performing n polynomial evaluations at n points of a degree-^ polynomial using 
the k pieces of the encrypted secret as polynomial coefficients; 

wherein each of the k secret owner pieces includes a result of one of the n 
polynomial evaluations and a corresponding one of the n points. 

26. (currently amended) A method as in claim 25, furth e r comprising th e st e ps 

e£ 

distributing th e n se cr e t owner pi e c es to the n s e cr e t own e rs; 
r e c e iving k s e cr e t owner piec e s from k s e cret owners; and 
p e rforming a r e v e rs e k out of n s e cr e t sharing algorithm on th e k s e cr e t own e r 
pieces so as to recr e at e th e e ncrypt e d secr e t; wherein the step of performing a reverse k out of n 
secret sharing algorithm includes the steps of generating a system of k linear equations and 
solving the system of k linear equations for the k pieces of the encrypted secret. 

27. (currently amended) A method as in claim 26, further comprising the step of: 
assembling the k pieces of the encrypted secret so as to recreate the encrypted 

secreti^and 

d e crypting th e e ncrypt e d s e cr e t so as to r e cr e at e th e s e cr e t . 

28. -29. (canceled). 

30. (currently amended) A computer readable storage medium having embodied 
thereon computer readable program code suitable for programming a computer to perform a 
method performed by a custodian to share a secret S among n secret owners such that any k of 
the n secret owners may reconstruct the secret, the method comprising the steps of: 
choosing two large primes P and Q, such that PQ is greater than 5; 
computing and storing a product N - PQ; 
computing and storing a product M = (P-\){Q-l)\ 
choosing n random numbers e x through e n that are relatively prime to N\ 
choosing another random number e that is relatively prime to N\ 
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choosing n numbers d x through d n such that e$i mod M equals one for 1 < i < n ; 
choosing another number d such that ed mod M is equal to one; 



generating and storing a database of 



values, where each value is the product 



of d and a unique k of the d t numbers for 1 < / < n , wherein each value is associated with a 
unique combination of k secret owners of the n secret owners ; 

deleting P, Q, and M\ 

computing Sf; 

distributing n secret owner pieces to each of the n secret owners, wherein each of 
the secret owner pieces includes Sf and one of the numbers e x through e n \ and 
deleting the secret S and e x through e n , e, d x through d n9 and rf; 
receiving k secret owner values from a unique combination of k secret owners; 
determining a value c that is associated with the unique combination; and 
determining the secret S using the value c and the k secret owner values . 

31. (currently amended) A computer readable storage medium having embodied 
thereon computer readable program code suitable for programming a computer to perform a 
method performed by a custodian to share a secret S among n secret owners such that any k of 
the n secret owners may reconstruct the secret, the method comprising the steps of: 

choosing two large primes P and Q, such that PQ is greater than S; 

computing and storing a product N = PQ; 

computing and storing a product M= (P-l)(QA); 

choosing n random numbers e, through e n that are relatively prime to Af; 

choosing random numbers e and e' that are relatively prime to Af; 

choosing n numbers d x through d n such that eadi mod M equals one for 1 < i < n ; 

choosing numbers d and d f such that ed mod M is equal to one and such that e'd' 
mod M is equal to one; 
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generating and storing a database of 



values, where each value is the product 



of d and a unique k of the d i numbers for 1 < / < n , wherein each value is associated with a 

unique combination of k secret owners of the n secret owners ; 
deleting P 9 Q, and M; 
computing 5f e ; 

distributing n secret owner pieces to each of the n secret owners, wherein each of 
the secret owner pieces includes tf e ' and one of the numbers e, through e n \ and 
deleting the secret S and e x through e n , e, d { through d n , and d^ 
receiving k secret owner values from a unique combination of k secret owners; 
determining a value c that is associated with the unique combination; and 
determining the secret S using the value c and the k secret owner values . 

32. (currently amended) A computer readable storage medium having embodied 
thereon computer readable program code suitable for programming a computer to perform a 
method performed by a custodian to share a secret among n secret owners such that any k of the 
n secret owners may reconstruct the secret, the method comprising the steps of: 

encrypting the secret so as to generate an encrypted secret; 

deleting the secret; and 

performing a forward k out of n secret sharing algorithm on the encrypted secret 
so as to generate n secret owner pieces; 

storing a plurality of values associated with a plurality of unique combinations of 
k secret owners of the n secret owners; 

distributing the n secret owner pieces to the n secret owners; 

receiving k secret owner values from a unique combination of k secret owners; 

determining a value c that is associated with the unique combination; 

performing a reverse k out of n secret sharing algorithm on the k secret owner 
pieces so as to recreate the encrypted secret using the value c; and 

decrypting the encrypted secret so as to recreate the secret . 
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33.-34. (canceled). 

35. (currently amended) A computer comprising a processor and a computer 
readable storage medium coupled to the processor having embodied thereon processor readable 
program code suitable for programming a computer to perform a method performed by a 
custodian to share a secret S among n secret owners such that any k of the n secret owners may 
reconstruct the secret, the method comprising the steps of: 

choosing two large primes P and Q y such that PQ is greater than S\ 

computing and storing a product N = PQ; 

computing and storing a product M = (/M)(£M); 

choosing n random numbers e x through e n that are relatively prime to N; 

choosing another random number e that is relatively prime to N; 

choosing n numbers d x through d n such that mod M equals one for 1 < i < n ; 

choosing another number d such that ed mod M is equal to one; 



generating and storing a database of 



values, where each value is the product 



of d and a unique k of the di numbers for 1 < i < n , wherein each value is associated with a 
unique combination of k secret owners of the n secret owners ; 

deleting P, Q, and M; 

computing S*; 

distributing n secret owner pieces to each of the n secret owners, wherein each of 
the secret owner pieces includes and one of the numbers e x through e n ; and ^ 
deleting the secret S and e x through e n , e, d x through d n , and d* x 
receiving k secret owner values from a unique combination of k secret owners; 
determining a value c that is associated with the unique combination; and 
determining the secret S using the value c and the k secret owner values . 
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36. (currently amended) A computer comprising a processor and a computer 
readable storage medium coupled to the processor having embodied thereon processor readable 
program code suitable for programming the computer to perform a method performed by a 
custodian to share a secret S among n secret owners such that any k of the n secret owners may 
reconstruct the secret, the method comprising the steps of: 

choosing two large primes P and Q, such that PQ is greater than 5; 

computing and storing a product AT = PQ; 

computing and storing a product M= (iM)(0-l); 

choosing n random numbers e x through e n that are relatively prime to N; 

choosing random numbers e and e f that are relatively prime to N; 

choosing n numbers d x through d n such that e$i mod M equals one for 1 < i < n ; 

choosing numbers d and d f such that ed mod M is equal to one and such that e'd f 
mod M is equal to one; 



generating and storing a database of 



values, where each value is the product 



of d and a unique k of the di numbers for 1 < i < n , wherein each value i s associated with a 
unique combination of k secret owners of the n secret owners ; 

deleting P, Q y and M; 

computing £f e '\ 

distributing n secret owner pieces to each of the n secret owners, wherein each of 
the secret owner pieces includes ^ e and one of the numbers e x through e n \ aad 
deleting the secret S and e x through e n9 e 9 d x through d ny and di 

receiving k secret owner values from a unique combination of k secret owners; 
determining a value c that is associated with the unique combination; and 
determining the secret S using the value c and the k secret owner values . 

37. (currently amended) A computer comprising a processor and a computer 
readable storage medium coupled to the processor having embodied thereon processor readable 
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program code suitable for programming the computer to perform a method performed by a 
custodian to share a secret among n secret owner such that any k of the n secret owners may 
reconstruct the secret, the method comprising the steps of: 

encrypting the secret so as to generate an encrypted secret; 

deleting the secret; and 

performing a forward k out of n secret sharing algorithm on the encrypted secret 
so as to generate n secret owner pieces; 

storing a plurality of values associated with a plurality of unique combinations of 
k secret owners of the n secret owners; 

distributing the n secret owner pieces to the n secret owners; 

receiving k secret owner values from a unique combination of k secret owners; 

determining a value c that is associated with the unique combination; 

performing a reverse k out of/? secret sharing algorithm on the k secret owner 
pieces so as to recreate the encrypted secret using the value c; and 

decrypting the encrypted secret so as to recreate the secret . 
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